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Claims 

1. An authentication method of at least one client entity 
(A) by an authentication entity (B) , said authentication 

5 entity (B) comprising a set of secret keys (K Ai ) , each being 
associated with a client entity (Ai) capable of being 
identified by said authentication entity, said method being 
characterized in that it comprises the following steps 
consisting of : 

10 a transmitting an anonymous authentication request 

(Authentication Request) from the part of the client entity 

(A) to the authentication entity (B) ; 

b - sending from the authentication entity (B) to the 
client entity, an authentication counter value (CB) 

15 corresponding to the current state of a counter (COMPTB) of 
the authentication entity (B) ; 

c - verifying, at the client entity side (A) , that the 
authentication counter value (CB) received is strictly greater 
than a counter value (CA) stored by the client entity (A) ; 

20 d - calculating, at the client entity side (A) , a counter 

signature by application of a cryptographic function (S) 
shared by the client entity (A) and the authentication entity 

(B) , with said authentication counter value (CB) and a secret 
key (K A ) associated with the client entity (A) as operands; 

25 e - transmitting said counter signature (S (K A ,CB)) to 

the authentication entity (B) ; 

f - updating the counter value (CA) stored by the client 
entity (A) with said authentication counter value (CB) ; 

g - searching, at the authentication entity side (B) , for 
30 at least one client entity (A) capable of being identified, 
for which the corresponding counter signature (S (K A i, CB) ) for 
said authentication counter value (CB) is coherent with the 
counter signature received (S (K A/ CB) ) / 

h - having the authentication counter (COMPTB) increase. 

35 

2. The authentication method according to Claim 1, 
characterized in that steps b) to h) are reiterated at least 
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once, so as to ensure that the client entity identified is 
identical at each iteration. 

3. The method according to Claim 1 or 2, characterized in 
5 that the search step consists of: 

i - calculating, for each client entity (Ai) capable of 
being identified, the corresponding counter signature (S (K Ai , 
CB) ) by application of the cryptographic function (S) with the 
authentication counter value (CB) and the secret key 
10 associated with (K Ai ) as operands, so as to compile a list of 
client entity capable of being identified/corresponding 
counter signature couples (Ai, S (K Ai , CB) ) , for said counter 
value (CB) ; 

j - verifying the coherence between the counter signature 
15 received (S (K A/ CB) ) and at least one counter signature (S 
(K Ai , CB) ) of said list. 

4 . The authentication method according to Claim 3 , 
characterized in that the list of client entity capable of 

20 being identified/corresponding counter signature couples (Ai, 
S (K Ai , CB) ) compiled for a given authentication counter value 
(CB) , is ordered, at the authentication entity side, according 
to the value of said counter signature (S (K Ai , CB) ) . 

25 5. The authentication method according to Claim 3 or 4, 

characterized in that in the case of coherence between the 
counter signature received (S (K A , CB) ) and the counter 
signature (S (K A i, CB) ) of a plurality of couples, steps b) to 
h) are reiterated until a single couple is obtained for which 

30 the counter signature corresponds to the counter signature 
received. 

6. The authentication method according to Claim 5, 
characterized in that, during repetition of stage i) , the 
35 counter signature (S (K Ai , CB) ) is calculated solely for the 
client entities (Ai) corresponding to said plurality of 
couples determined at the preceding iteration. 
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7. The authentication method according to any one of 
Claims 3 to 5, characterized in that it consists of 
implementing step i) as anticipated relative to an 
5 authentication request from a client entity (A) at step a) , 
said anticipated step i) consisting of pre-establishing, at 
the authentication entity side (B) , for at least one 
authentication counter value (CB) to come, the list of client 
entity capable of being identified/corresponding counter 

10 signature couples (Ai, S (K Ai , CB) ) for each of said 
authentication counter values to come, and storing said pre- 
established lists at the authentication entity side (B) , any 
sending from the authentication entity (B) to the client 
entity (A) of an authentication counter value (CB) , 

15 corresponding to sending an authentication counter value (CB) 
for which a list of client entity capable of being 
identified/corresponding counter signature couples (Ai, S (K A i, 
CB) ) has already been pre-established. 

20 8 . The authentication method according to any one of the 

preceding claims, characterized in that step h) consists of 
increasing the authentication counter (COMPTB) by a fixed 
rate. 

25 9. The authentication method according to any one of 

Claims 1 to 7, characterised in that step h) consists of 
increasing the authentication counter (COMPTB) by a random 
rate . 

30 10. The authentication method according to any one of 

Claims 1 to 8, characterized in that, in response to an 
authentication request, step b) consists of sending, at the 
authentication entity side (B) , in addition to the 
authentication counter value (CB) , a random value associated 

35 with said counter value (CB) , said random value being 
different for each of the authentication counter values sent, 
each step of counter signature carried out during said method 
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being replaced by a signature step of the authentication 
counter value/associated random value couple, consisting of 
application of the cryptographic function (S) further 
comprising said associated random value as operand. 

5 

11. The authentication method according to any one of the 
preceding claims, characterized in that step c) consists in 
addition of verifying that the difference between the received 
authentication counter value (CB) and the stored counter value 

10 (CA) by the client entity is less than or equal to a 
predetermined value. 

12. The authentication method according to any one of 
Claims 1 to 10, characterized in that with step c) not being 

15 verified, the following intermediate steps are implemented 
consisting of: 

- sending the counter value (CA) stored by the client 
entity from the client entity (A) to the authentication entity 
(B) ; 

20 - sending a temporary authentication counter value 

greater than said counter value (CA) stored by the client 
entity from the authentication entity (B) to the client entity 
(A) , then: 

implementing steps d) to g) on the basis of the 
25 temporary authentication counter value and, in the case of 
success of authentication of said client entity, 

updating the authentication counter value (CB) 
corresponding to the current state of the counter (COMPTB) of 
the authentication entity (B) with the temporary 
30 authentication counter value and executing step h) . 

13 . The authentication method according to any one of the 
preceding, claims , characterized in that stage e) consists of 
transmitting the authentication counter value (CB) in addition 

35 to the authentication entity (B) . 
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14. The authentication method according to any one of the 
preceding claims, characterized in that the authentication 
counter value (CB) is coded on at least 128 bits. 

5 15. A chip card, characterized in that it comprises an 

integrated circuit and means for storing a secret key (K A ) and 
executing the method according to any one of Claims 1 to 14 . 

16. The chip card according to Claim 15, characterized in 
10 that it is a contact less chip card. 

17. An authentication entity (B) of at least one client 
entity (A) , characterized in that it comprises a chip card 
reader equipped with means for executing the method according 

15 to any one of Claims 1 to 14 . 

18. The authentication entity according to Claim 17, 
characterised in that it comprises a contactless chip card 
reader. 
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